search

etesync / etesync-dav

This is a CalDAV and CardDAV adapter for EteSync
https://www.etesync.com
GNU General Public License v3.0
285 stars 45 forks source link

Can't authenticate #230

Closed clayote closed 3 years ago

clayote commented 3 years ago

I logged into pim.etesync.com successfully so I know my password's good, but when I enter the same credentials into the etesync-dav login page it says "Wrong password for user." The log seems to indicate this is because it can't fetch favicon.ico:

[2021-07-09 01:11:31 -0400] [9849/Thread-13] [DEBUG] Sanitized script name: ''
[2021-07-09 01:11:31 -0400] [9849/Thread-13] [DEBUG] Sanitized path: '/.web/login/'
[2021-07-09 01:11:31 -0400] [9849/Thread-13] [INFO] POST response status for '/.web/login/' in 0.613 seconds: 200 OK
[2021-07-09 01:11:31 -0400] [9849/Thread-14] [INFO] GET request for '/favicon.ico' received from ::1 using 'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36'
[2021-07-09 01:11:31 -0400] [9849/Thread-14] [DEBUG] Request headers:
{'CONTENT_LENGTH': '',
 'CONTENT_TYPE': 'text/plain',
 'GATEWAY_INTERFACE': 'CGI/1.1',
 'HTTP_ACCEPT': 'image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8',
 'HTTP_ACCEPT_ENCODING': 'gzip, deflate, br',
 'HTTP_ACCEPT_LANGUAGE': 'en-US,en;q=0.9',
 'HTTP_CONNECTION': 'keep-alive',
 'HTTP_COOKIE': '**masked**',
 'HTTP_HOST': 'localhost:37358',
 'HTTP_REFERER': 'http://localhost:37358/.web/login/',
 'HTTP_SEC_CH_UA': '" Not A;Brand";v="99", "Chromium";v="90"',
 'HTTP_SEC_CH_UA_MOBILE': '?0',
 'HTTP_SEC_FETCH_DEST': 'image',
 'HTTP_SEC_FETCH_MODE': 'no-cors',
 'HTTP_SEC_FETCH_SITE': 'same-origin',
 'HTTP_USER_AGENT': 'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 '
                    '(KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36',
 'PATH_INFO': '/favicon.ico',
 'QUERY_STRING': '',
 'REMOTE_ADDR': '::1',
 'REMOTE_HOST': '',
 'REQUEST_METHOD': 'GET',
 'SCRIPT_NAME': '',
 'SERVER_NAME': 'ip6-localhost',
 'SERVER_PORT': '37358',
 'SERVER_PROTOCOL': 'HTTP/1.1',
 'SERVER_SOFTWARE': 'WSGIServer/0.2',
 'wsgi.errors': <_io.TextIOWrapper name='<stderr>' mode='w' encoding='utf-8'>,
 'wsgi.file_wrapper': <class 'wsgiref.util.FileWrapper'>,
 'wsgi.input': <_io.BufferedReader name=7>,
 'wsgi.multiprocess': False,
 'wsgi.multithread': True,
 'wsgi.run_once': False,
 'wsgi.url_scheme': 'http',
 'wsgi.version': (1, 0)}
[2021-07-09 01:11:31 -0400] [9849/Thread-14] [DEBUG] Sanitized script name: ''
[2021-07-09 01:11:31 -0400] [9849/Thread-14] [DEBUG] Sanitized path: '/favicon.ico'
[2021-07-09 01:11:31 -0400] [9849/Thread-14] [INFO] Access to '/favicon.ico' denied for anonymous user
[2021-07-09 01:11:31 -0400] [9849/Thread-14] [DEBUG] Asking client for authentication
[2021-07-09 01:11:31 -0400] [9849/Thread-14] [DEBUG] Response content:
Access to the requested resource forbidden.
[2021-07-09 01:11:31 -0400] [9849/Thread-14] [INFO] GET response status for '/favicon.ico' in 0.001 seconds: 401 Unauthorize
tasn commented 3 years ago

Is this a normal login screen or a popup dialog?

clayote commented 3 years ago

A totally normal login screen, it shows up when I go to localhost:37358

clayote commented 3 years ago

I modified my base.html not to load a favicon by adding <link rel="icon" href="data:,"> to its head. This appeared to result in the same behavior in the browser, but the log looks different, and in fact, doesn't look like it's got any errors in it.

But I still can't log in!

sanotehu@sanotehu-MS-7A31:~$ etesync-dav --logging-level debug
[2021-07-16 15:28:56 -0400] [18871] [INFO] Loaded default config
[2021-07-16 15:28:56 -0400] [18871] [INFO] Loaded arguments
[2021-07-16 15:28:56 -0400] [18871] [INFO] Starting Radicale
[2021-07-16 15:28:56 -0400] [18871] [INFO] auth type is 'radicale.auth.htpasswd'
[2021-07-16 15:28:56 -0400] [18871] [INFO] storage type is 'etesync_dav.radicale.storage'
[2021-07-16 15:28:56 -0400] [18871] [INFO] rights type is 'etesync_dav.radicale.rights'
[2021-07-16 15:28:56 -0400] [18871] [INFO] web type is 'etesync_dav.radicale.web'
[2021-07-16 15:28:56 -0400] [18871] [INFO] Listening on '[127.0.0.1]:37358'
[2021-07-16 15:28:57 -0400] [18871] [INFO] Listening on '[::1]:37358'
[2021-07-16 15:28:57 -0400] [18871] [INFO] Radicale server ready
[2021-07-16 15:29:02 -0400] [18871/Thread-1] [INFO] POST request for '/.web/login/' received from 127.0.0.1 using 'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:90.0) Gecko/20100101 Firefox/90.0'
[2021-07-16 15:29:02 -0400] [18871/Thread-1] [DEBUG] Request headers:
{'CONTENT_LENGTH': '147',
 'CONTENT_TYPE': 'application/x-www-form-urlencoded',
 'GATEWAY_INTERFACE': 'CGI/1.1',
 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8',
 'HTTP_ACCEPT_ENCODING': 'gzip, deflate',
 'HTTP_ACCEPT_LANGUAGE': 'en-US,en;q=0.5',
 'HTTP_CACHE_CONTROL': 'max-age=0',
 'HTTP_CONNECTION': 'keep-alive',
 'HTTP_COOKIE': '**masked**',
 'HTTP_HOST': 'localhost:37358',
 'HTTP_ORIGIN': 'http://localhost:37358',
 'HTTP_REFERER': 'http://localhost:37358/.web/login/',
 'HTTP_SEC_FETCH_DEST': 'document',
 'HTTP_SEC_FETCH_MODE': 'navigate',
 'HTTP_SEC_FETCH_SITE': 'same-origin',
 'HTTP_SEC_FETCH_USER': '?1',
 'HTTP_UPGRADE_INSECURE_REQUESTS': '1',
 'HTTP_USER_AGENT': 'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:90.0) '
                    'Gecko/20100101 Firefox/90.0',
 'PATH_INFO': '/.web/login/',
 'QUERY_STRING': '',
 'REMOTE_ADDR': '127.0.0.1',
 'REMOTE_HOST': '',
 'REQUEST_METHOD': 'POST',
 'SCRIPT_NAME': '',
 'SERVER_NAME': 'localhost',
 'SERVER_PORT': '37358',
 'SERVER_PROTOCOL': 'HTTP/1.1',
 'SERVER_SOFTWARE': 'WSGIServer/0.2',
 'wsgi.errors': <_io.TextIOWrapper name='<stderr>' mode='w' encoding='utf-8'>,
 'wsgi.file_wrapper': <class 'wsgiref.util.FileWrapper'>,
 'wsgi.input': <_io.BufferedReader name=7>,
 'wsgi.multiprocess': False,
 'wsgi.multithread': True,
 'wsgi.run_once': False,
 'wsgi.url_scheme': 'http',
 'wsgi.version': (1, 0)}
[2021-07-16 15:29:02 -0400] [18871/Thread-1] [DEBUG] Sanitized script name: ''
[2021-07-16 15:29:02 -0400] [18871/Thread-1] [DEBUG] Sanitized path: '/.web/login/'
[2021-07-16 15:29:02 -0400] [18871/Thread-1] [INFO] POST response status for '/.web/login/' in 0.122 seconds: 400 Bad Request
[2021-07-16 15:29:05 -0400] [18871/Thread-2] [INFO] GET request for '/' received from 127.0.0.1 using 'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:90.0) Gecko/20100101 Firefox/90.0'
[2021-07-16 15:29:05 -0400] [18871/Thread-2] [DEBUG] Request headers:
{'CONTENT_LENGTH': '',
 'CONTENT_TYPE': 'text/plain',
 'GATEWAY_INTERFACE': 'CGI/1.1',
 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8',
 'HTTP_ACCEPT_ENCODING': 'gzip, deflate',
 'HTTP_ACCEPT_LANGUAGE': 'en-US,en;q=0.5',
 'HTTP_CONNECTION': 'keep-alive',
 'HTTP_COOKIE': '**masked**',
 'HTTP_HOST': 'localhost:37358',
 'HTTP_SEC_FETCH_DEST': 'document',
 'HTTP_SEC_FETCH_MODE': 'navigate',
 'HTTP_SEC_FETCH_SITE': 'none',
 'HTTP_SEC_FETCH_USER': '?1',
 'HTTP_UPGRADE_INSECURE_REQUESTS': '1',
 'HTTP_USER_AGENT': 'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:90.0) '
                    'Gecko/20100101 Firefox/90.0',
 'PATH_INFO': '/',
 'QUERY_STRING': '',
 'REMOTE_ADDR': '127.0.0.1',
 'REMOTE_HOST': '',
 'REQUEST_METHOD': 'GET',
 'SCRIPT_NAME': '',
 'SERVER_NAME': 'localhost',
 'SERVER_PORT': '37358',
 'SERVER_PROTOCOL': 'HTTP/1.1',
 'SERVER_SOFTWARE': 'WSGIServer/0.2',
 'wsgi.errors': <_io.TextIOWrapper name='<stderr>' mode='w' encoding='utf-8'>,
 'wsgi.file_wrapper': <class 'wsgiref.util.FileWrapper'>,
 'wsgi.input': <_io.BufferedReader name=7>,
 'wsgi.multiprocess': False,
 'wsgi.multithread': True,
 'wsgi.run_once': False,
 'wsgi.url_scheme': 'http',
 'wsgi.version': (1, 0)}
[2021-07-16 15:29:05 -0400] [18871/Thread-2] [DEBUG] Sanitized script name: ''
[2021-07-16 15:29:05 -0400] [18871/Thread-2] [DEBUG] Sanitized path: '/'
[2021-07-16 15:29:05 -0400] [18871/Thread-2] [DEBUG] Response content:
Redirected to .web
[2021-07-16 15:29:05 -0400] [18871/Thread-2] [INFO] GET response status for '/' in 0.001 seconds: 302 Found
[2021-07-16 15:29:05 -0400] [18871/Thread-3] [INFO] GET request for '/.web/' received from 127.0.0.1 using 'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:90.0) Gecko/20100101 Firefox/90.0'
[2021-07-16 15:29:05 -0400] [18871/Thread-3] [DEBUG] Request headers:
{'CONTENT_LENGTH': '',
 'CONTENT_TYPE': 'text/plain',
 'GATEWAY_INTERFACE': 'CGI/1.1',
 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8',
 'HTTP_ACCEPT_ENCODING': 'gzip, deflate',
 'HTTP_ACCEPT_LANGUAGE': 'en-US,en;q=0.5',
 'HTTP_CONNECTION': 'keep-alive',
 'HTTP_COOKIE': '**masked**',
 'HTTP_HOST': 'localhost:37358',
 'HTTP_SEC_FETCH_DEST': 'document',
 'HTTP_SEC_FETCH_MODE': 'navigate',
 'HTTP_SEC_FETCH_SITE': 'none',
 'HTTP_SEC_FETCH_USER': '?1',
 'HTTP_UPGRADE_INSECURE_REQUESTS': '1',
 'HTTP_USER_AGENT': 'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:90.0) '
                    'Gecko/20100101 Firefox/90.0',
 'PATH_INFO': '/.web/',
 'QUERY_STRING': '',
 'REMOTE_ADDR': '127.0.0.1',
 'REMOTE_HOST': '',
 'REQUEST_METHOD': 'GET',
 'SCRIPT_NAME': '',
 'SERVER_NAME': 'localhost',
 'SERVER_PORT': '37358',
 'SERVER_PROTOCOL': 'HTTP/1.1',
 'SERVER_SOFTWARE': 'WSGIServer/0.2',
 'wsgi.errors': <_io.TextIOWrapper name='<stderr>' mode='w' encoding='utf-8'>,
 'wsgi.file_wrapper': <class 'wsgiref.util.FileWrapper'>,
 'wsgi.input': <_io.BufferedReader name=7>,
 'wsgi.multiprocess': False,
 'wsgi.multithread': True,
 'wsgi.run_once': False,
 'wsgi.url_scheme': 'http',
 'wsgi.version': (1, 0)}
[2021-07-16 15:29:05 -0400] [18871/Thread-3] [DEBUG] Sanitized script name: ''
[2021-07-16 15:29:05 -0400] [18871/Thread-3] [DEBUG] Sanitized path: '/.web/'
[2021-07-16 15:29:05 -0400] [18871/Thread-3] [INFO] GET response status for '/.web/' in 0.004 seconds: 302 Found
[2021-07-16 15:29:05 -0400] [18871/Thread-4] [INFO] GET request for '/.web/login/' received from 127.0.0.1 using 'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:90.0) Gecko/20100101 Firefox/90.0'
[2021-07-16 15:29:05 -0400] [18871/Thread-4] [DEBUG] Request headers:
{'CONTENT_LENGTH': '',
 'CONTENT_TYPE': 'text/plain',
 'GATEWAY_INTERFACE': 'CGI/1.1',
 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8',
 'HTTP_ACCEPT_ENCODING': 'gzip, deflate',
 'HTTP_ACCEPT_LANGUAGE': 'en-US,en;q=0.5',
 'HTTP_CONNECTION': 'keep-alive',
 'HTTP_COOKIE': '**masked**',
 'HTTP_HOST': 'localhost:37358',
 'HTTP_SEC_FETCH_DEST': 'document',
 'HTTP_SEC_FETCH_MODE': 'navigate',
 'HTTP_SEC_FETCH_SITE': 'none',
 'HTTP_SEC_FETCH_USER': '?1',
 'HTTP_UPGRADE_INSECURE_REQUESTS': '1',
 'HTTP_USER_AGENT': 'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:90.0) '
                    'Gecko/20100101 Firefox/90.0',
 'PATH_INFO': '/.web/login/',
 'QUERY_STRING': '',
 'REMOTE_ADDR': '127.0.0.1',
 'REMOTE_HOST': '',
 'REQUEST_METHOD': 'GET',
 'SCRIPT_NAME': '',
 'SERVER_NAME': 'localhost',
 'SERVER_PORT': '37358',
 'SERVER_PROTOCOL': 'HTTP/1.1',
 'SERVER_SOFTWARE': 'WSGIServer/0.2',
 'wsgi.errors': <_io.TextIOWrapper name='<stderr>' mode='w' encoding='utf-8'>,
 'wsgi.file_wrapper': <class 'wsgiref.util.FileWrapper'>,
 'wsgi.input': <_io.BufferedReader name=7>,
 'wsgi.multiprocess': False,
 'wsgi.multithread': True,
 'wsgi.run_once': False,
 'wsgi.url_scheme': 'http',
 'wsgi.version': (1, 0)}
[2021-07-16 15:29:05 -0400] [18871/Thread-4] [DEBUG] Sanitized script name: ''
[2021-07-16 15:29:05 -0400] [18871/Thread-4] [DEBUG] Sanitized path: '/.web/login/'
[2021-07-16 15:29:05 -0400] [18871/Thread-4] [INFO] GET response status for '/.web/login/' in 0.016 seconds: 200 OK
[2021-07-16 15:29:06 -0400] [18871/Thread-5] [INFO] POST request for '/.web/login/' received from 127.0.0.1 using 'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:90.0) Gecko/20100101 Firefox/90.0'
[2021-07-16 15:29:06 -0400] [18871/Thread-5] [DEBUG] Request headers:
{'CONTENT_LENGTH': '147',
 'CONTENT_TYPE': 'application/x-www-form-urlencoded',
 'GATEWAY_INTERFACE': 'CGI/1.1',
 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8',
 'HTTP_ACCEPT_ENCODING': 'gzip, deflate',
 'HTTP_ACCEPT_LANGUAGE': 'en-US,en;q=0.5',
 'HTTP_CONNECTION': 'keep-alive',
 'HTTP_COOKIE': '**masked**',
 'HTTP_HOST': 'localhost:37358',
 'HTTP_ORIGIN': 'http://localhost:37358',
 'HTTP_REFERER': 'http://localhost:37358/.web/login/',
 'HTTP_SEC_FETCH_DEST': 'document',
 'HTTP_SEC_FETCH_MODE': 'navigate',
 'HTTP_SEC_FETCH_SITE': 'same-origin',
 'HTTP_SEC_FETCH_USER': '?1',
 'HTTP_UPGRADE_INSECURE_REQUESTS': '1',
 'HTTP_USER_AGENT': 'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:90.0) '
                    'Gecko/20100101 Firefox/90.0',
 'PATH_INFO': '/.web/login/',
 'QUERY_STRING': '',
 'REMOTE_ADDR': '127.0.0.1',
 'REMOTE_HOST': '',
 'REQUEST_METHOD': 'POST',
 'SCRIPT_NAME': '',
 'SERVER_NAME': 'localhost',
 'SERVER_PORT': '37358',
 'SERVER_PROTOCOL': 'HTTP/1.1',
 'SERVER_SOFTWARE': 'WSGIServer/0.2',
 'wsgi.errors': <_io.TextIOWrapper name='<stderr>' mode='w' encoding='utf-8'>,
 'wsgi.file_wrapper': <class 'wsgiref.util.FileWrapper'>,
 'wsgi.input': <_io.BufferedReader name=7>,
 'wsgi.multiprocess': False,
 'wsgi.multithread': True,
 'wsgi.run_once': False,
 'wsgi.url_scheme': 'http',
 'wsgi.version': (1, 0)}
[2021-07-16 15:29:06 -0400] [18871/Thread-5] [DEBUG] Sanitized script name: ''
[2021-07-16 15:29:06 -0400] [18871/Thread-5] [DEBUG] Sanitized path: '/.web/login/'
[2021-07-16 15:29:07 -0400] [18871/Thread-5] [INFO] POST response status for '/.web/login/' in 0.613 seconds: 200 OK
tasn commented 3 years ago

It's really unlikely to really be the favicon. I'd try to maybe reset the local etesync-dav data and try login again.

clayote commented 3 years ago

Yeah it works now that I've done rm -rf .local/share/etesync-dav

I suppose I should have backed up the database so you could figure out what was really going on

Sorry...